Bump phpstan/phpstan from 1.8.8 to 1.9.0

Created by: dependabot[bot]

Bumps phpstan/phpstan from 1.8.8 to 1.9.0.

Release notes

Sourced from phpstan/phpstan's releases.

1.9.0

Check out the article about this release!

Major new features 🚀

• PHPDoc-based type narrowing with @phpstan-assert, @phpstan-assert-if-true, @phpstan-assert-if-false (#1317), #7110, #8186, thanks @​rvanvelzen!
  • Documentation
• @phpstan-self-out/@phpstan-this-out support (#1799), thanks @​rvanvelzen!
  • Can be used to change the type of the current object after calling a method on it. This is useful for generic mutable objects.
  • Documentation
• @param-out support (#1804), #7231, #6871, #6186, #4372, #5785, thanks @​staabm!
  • Can be used to specify type of function argument passed by reference
  • Documentation
• Add extensible ClassReflection::getAllowedSubTypes() (#1477), thanks @​jiripudil!
  • Documentation
• Add config parameter checkBenevolentUnionTypes to strictly check BenevolentUnionType (#1930), #8223, thanks @​VincentLanglet!
  • Documentation

Bleeding edge 🔪

• Array list type (#1751), #3311, #8185, #6243, thanks @​rvanvelzen!
  • Lists are arrays with sequential integer keys starting at 0
• Improve error wording of the NonexistentOffset, BooleanAndConstantConditionRule, and BooleanOrConstantConditionRule (#1882), thanks @​VincentLanglet!
• MissingMagicSerializationMethodsRule (#1711), #7482, thanks @​staabm!
• Unescape strings in phpdoc-parser (https://github.com/phpstan/phpstan-src/commit/97786ed8376b478ec541ea9df1c450c1fbfe7461)
• Stub files validation - detect duplicate classes and functions (https://github.com/phpstan/phpstan-src/commit/ddf8d5c3859c2c75c20f525a0e2ca8b99032373a, https://github.com/phpstan/phpstan-src/commit/17e4b74335e5235d7cd6708eb687a774a0eeead4)

If you want to see the shape of things to come and adopt bleeding edge features early, you can include this config file in your project's phpstan.neon:

includes:
	- vendor/phpstan/phpstan/conf/bleedingEdge.neon

Of course, there are no backwards compatibility guarantees when you include this file. The behaviour and reported errors can change in minor versions with this file included. Learn more

Improvements 🔧

• Add non-negative-int and non-positive-int (#1803), thanks @​rvanvelzen!
• Optimize NonexistentOffsetInArrayDimFetchCheck (#1801), thanks @​herndlm!
• Modify the built-in @method extension to look at @throws in __call (#1842), #8163, thanks @​VincentLanglet!
• Improve impossible type checker for void-returning functions (#1857), #8169, thanks @​rvanvelzen!
• Allow using $this/static in conditional return types (#1863), thanks @​rvanvelzen!
• Emit warnings when Xdebug is not used according to CLI flags (#1878), thanks @​staabm!
• Improve array_fill return type extension (#1879), thanks @​rvanvelzen!

... (truncated)

Commits

• e08de53 PHPStan 1.9.0
• 8562844 Add checkBenevolentUnionTypes docs
• 5892281 Updated PHPStan to commit 0de603a1f15726d0ef74616fc75cd8e6c8bc900e
• d48f8c8 Updated PHPStan to commit d93776ce7d315742716cbb938428e98ef7ec3faf
• 698f3cc TypeNodeResolverExtension documentation
• 891e283 More API Reference links
• 3b91326 Allowed subtypes documentation
• 639b64f Update phpdocs-basics.md
• ddeee12 Update type-specifying-extensions.md
• 4d6364f Update narrowing-types.md
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)